@openhi/constructs 0.0.48 → 0.0.50

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (9) hide show
  1. package/lib/pre-token-generation.handler.js +4 -4
  2. package/lib/pre-token-generation.handler.js.map +1 -1
  3. package/lib/pre-token-generation.handler.mjs +4 -4
  4. package/lib/pre-token-generation.handler.mjs.map +1 -1
  5. package/lib/rest-api-lambda.handler.js +5 -10
  6. package/lib/rest-api-lambda.handler.js.map +1 -1
  7. package/lib/rest-api-lambda.handler.mjs +5 -10
  8. package/lib/rest-api-lambda.handler.mjs.map +1 -1
  9. package/package.json +5 -5
package/lib/pre-token-generation.handler.js CHANGED
@@ -24,10 +24,10 @@ __export(pre_token_generation_handler_exports, {
24
24
  });
25
25
  module.exports = __toCommonJS(pre_token_generation_handler_exports);
26
26
  var OPENHI_CLAIMS = {
27
- openhi_tenant_id: "placeholder-tenant-id",
28
- openhi_workspace_id: "placeholder-workspace-id",
29
- openhi_user_id: "placeholder-user-id",
30
- openhi_user_name: "placeholder"
27
+ ohi_tid: "placeholder-tenant-id",
28
+ ohi_wid: "placeholder-workspace-id",
29
+ ohi_uid: "placeholder-user-id",
30
+ ohi_uname: "placeholder"
31
31
  };
32
32
  var handler = async (event, _context) => {
33
33
  console.debug(`Raw event=${event}`);
package/lib/pre-token-generation.handler.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"sources":["../src/components/cognito/pre-token-generation.handler.ts"],"sourcesContent":["import type {\n Context,\n PreTokenGenerationTriggerEvent,\n PreTokenGenerationTriggerHandler,\n} from \"aws-lambda\";\n\n/* Hardcoded OpenHI claims. These will be made dynamic in a future update. */\nconst OPENHI_CLAIMS = {\n openhi_tenant_id: \"placeholder-tenant-id\",\n openhi_workspace_id: \"placeholder-workspace-id\",\n openhi_user_id: \"placeholder-user-id\",\n openhi_user_name: \"placeholder\",\n} as const;\n\n/**\n * @see sites/www-docs/content/packages/@openhi/constructs/components/cognito/pre-token-generation-lambda.md\n *\n * Cognito Pre Token Generation trigger (V2_0).\n * Adds openhi_* claims to both the ID token and the access token. Invoked on sign-in and token refresh.\n * Token issuance must not fail: on error we return the event unchanged.\n */\nexport const handler: PreTokenGenerationTriggerHandler = async (\n event: PreTokenGenerationTriggerEvent,\n _context: Context,\n): Promise<PreTokenGenerationTriggerEvent> => {\n console.debug(`Raw event=${event}`);\n try {\n if (!event.response) {\n (event as { response: Record<string, unknown> }).response = {};\n }\n const response = event.response as Record<string, unknown>;\n const claimsToAdd = { ...OPENHI_CLAIMS };\n response.claimsAndScopeOverrideDetails = {\n accessTokenGeneration: {\n claimsToAddOrOverride: claimsToAdd,\n },\n idTokenGeneration: {\n claimsToAddOrOverride: claimsToAdd,\n },\n };\n } catch {\n // Do not fail token issuance; return event unchanged.\n console.warn(\"Event is missing tenant or workspace ID...\");\n }\n return event;\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAOA,IAAM,gBAAgB;AAAA,EACpB,kBAAkB;AAAA,EAClB,qBAAqB;AAAA,EACrB,gBAAgB;AAAA,EAChB,kBAAkB;AACpB;AASO,IAAM,UAA4C,OACvD,OACA,aAC4C;AAC5C,UAAQ,MAAM,aAAa,KAAK,EAAE;AAClC,MAAI;AACF,QAAI,CAAC,MAAM,UAAU;AACnB,MAAC,MAAgD,WAAW,CAAC;AAAA,IAC/D;AACA,UAAM,WAAW,MAAM;AACvB,UAAM,cAAc,EAAE,GAAG,cAAc;AACvC,aAAS,gCAAgC;AAAA,MACvC,uBAAuB;AAAA,QACrB,uBAAuB;AAAA,MACzB;AAAA,MACA,mBAAmB;AAAA,QACjB,uBAAuB;AAAA,MACzB;AAAA,IACF;AAAA,EACF,QAAQ;AAEN,YAAQ,KAAK,4CAA4C;AAAA,EAC3D;AACA,SAAO;AACT;","names":[]}
1
+ {"version":3,"sources":["../src/components/cognito/pre-token-generation.handler.ts"],"sourcesContent":["import type {\n Context,\n PreTokenGenerationTriggerEvent,\n PreTokenGenerationTriggerHandler,\n} from \"aws-lambda\";\n\n/* Hardcoded OpenHI claims. These will be made dynamic in a future update. */\nconst OPENHI_CLAIMS = {\n ohi_tid: \"placeholder-tenant-id\",\n ohi_wid: \"placeholder-workspace-id\",\n ohi_uid: \"placeholder-user-id\",\n ohi_uname: \"placeholder\",\n} as const;\n\n/**\n * @see sites/www-docs/content/packages/@openhi/constructs/components/cognito/pre-token-generation-lambda.md\n *\n * Cognito Pre Token Generation trigger (V2_0).\n * Adds openhi_* claims to both the ID token and the access token. Invoked on sign-in and token refresh.\n * Token issuance must not fail: on error we return the event unchanged.\n */\nexport const handler: PreTokenGenerationTriggerHandler = async (\n event: PreTokenGenerationTriggerEvent,\n _context: Context,\n): Promise<PreTokenGenerationTriggerEvent> => {\n console.debug(`Raw event=${event}`);\n try {\n if (!event.response) {\n (event as { response: Record<string, unknown> }).response = {};\n }\n const response = event.response as Record<string, unknown>;\n const claimsToAdd = { ...OPENHI_CLAIMS };\n response.claimsAndScopeOverrideDetails = {\n accessTokenGeneration: {\n claimsToAddOrOverride: claimsToAdd,\n },\n idTokenGeneration: {\n claimsToAddOrOverride: claimsToAdd,\n },\n };\n } catch {\n // Do not fail token issuance; return event unchanged.\n console.warn(\"Event is missing tenant or workspace ID...\");\n }\n return event;\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAOA,IAAM,gBAAgB;AAAA,EACpB,SAAS;AAAA,EACT,SAAS;AAAA,EACT,SAAS;AAAA,EACT,WAAW;AACb;AASO,IAAM,UAA4C,OACvD,OACA,aAC4C;AAC5C,UAAQ,MAAM,aAAa,KAAK,EAAE;AAClC,MAAI;AACF,QAAI,CAAC,MAAM,UAAU;AACnB,MAAC,MAAgD,WAAW,CAAC;AAAA,IAC/D;AACA,UAAM,WAAW,MAAM;AACvB,UAAM,cAAc,EAAE,GAAG,cAAc;AACvC,aAAS,gCAAgC;AAAA,MACvC,uBAAuB;AAAA,QACrB,uBAAuB;AAAA,MACzB;AAAA,MACA,mBAAmB;AAAA,QACjB,uBAAuB;AAAA,MACzB;AAAA,IACF;AAAA,EACF,QAAQ;AAEN,YAAQ,KAAK,4CAA4C;AAAA,EAC3D;AACA,SAAO;AACT;","names":[]}
package/lib/pre-token-generation.handler.mjs CHANGED
@@ -2,10 +2,10 @@ import "./chunk-LZOMFHX3.mjs";
2
2
 
3
3
  // src/components/cognito/pre-token-generation.handler.ts
4
4
  var OPENHI_CLAIMS = {
5
- openhi_tenant_id: "placeholder-tenant-id",
6
- openhi_workspace_id: "placeholder-workspace-id",
7
- openhi_user_id: "placeholder-user-id",
8
- openhi_user_name: "placeholder"
5
+ ohi_tid: "placeholder-tenant-id",
6
+ ohi_wid: "placeholder-workspace-id",
7
+ ohi_uid: "placeholder-user-id",
8
+ ohi_uname: "placeholder"
9
9
  };
10
10
  var handler = async (event, _context) => {
11
11
  console.debug(`Raw event=${event}`);
package/lib/pre-token-generation.handler.mjs.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"sources":["../src/components/cognito/pre-token-generation.handler.ts"],"sourcesContent":["import type {\n Context,\n PreTokenGenerationTriggerEvent,\n PreTokenGenerationTriggerHandler,\n} from \"aws-lambda\";\n\n/* Hardcoded OpenHI claims. These will be made dynamic in a future update. */\nconst OPENHI_CLAIMS = {\n openhi_tenant_id: \"placeholder-tenant-id\",\n openhi_workspace_id: \"placeholder-workspace-id\",\n openhi_user_id: \"placeholder-user-id\",\n openhi_user_name: \"placeholder\",\n} as const;\n\n/**\n * @see sites/www-docs/content/packages/@openhi/constructs/components/cognito/pre-token-generation-lambda.md\n *\n * Cognito Pre Token Generation trigger (V2_0).\n * Adds openhi_* claims to both the ID token and the access token. Invoked on sign-in and token refresh.\n * Token issuance must not fail: on error we return the event unchanged.\n */\nexport const handler: PreTokenGenerationTriggerHandler = async (\n event: PreTokenGenerationTriggerEvent,\n _context: Context,\n): Promise<PreTokenGenerationTriggerEvent> => {\n console.debug(`Raw event=${event}`);\n try {\n if (!event.response) {\n (event as { response: Record<string, unknown> }).response = {};\n }\n const response = event.response as Record<string, unknown>;\n const claimsToAdd = { ...OPENHI_CLAIMS };\n response.claimsAndScopeOverrideDetails = {\n accessTokenGeneration: {\n claimsToAddOrOverride: claimsToAdd,\n },\n idTokenGeneration: {\n claimsToAddOrOverride: claimsToAdd,\n },\n };\n } catch {\n // Do not fail token issuance; return event unchanged.\n console.warn(\"Event is missing tenant or workspace ID...\");\n }\n return event;\n};\n"],"mappings":";;;AAOA,IAAM,gBAAgB;AAAA,EACpB,kBAAkB;AAAA,EAClB,qBAAqB;AAAA,EACrB,gBAAgB;AAAA,EAChB,kBAAkB;AACpB;AASO,IAAM,UAA4C,OACvD,OACA,aAC4C;AAC5C,UAAQ,MAAM,aAAa,KAAK,EAAE;AAClC,MAAI;AACF,QAAI,CAAC,MAAM,UAAU;AACnB,MAAC,MAAgD,WAAW,CAAC;AAAA,IAC/D;AACA,UAAM,WAAW,MAAM;AACvB,UAAM,cAAc,EAAE,GAAG,cAAc;AACvC,aAAS,gCAAgC;AAAA,MACvC,uBAAuB;AAAA,QACrB,uBAAuB;AAAA,MACzB;AAAA,MACA,mBAAmB;AAAA,QACjB,uBAAuB;AAAA,MACzB;AAAA,IACF;AAAA,EACF,QAAQ;AAEN,YAAQ,KAAK,4CAA4C;AAAA,EAC3D;AACA,SAAO;AACT;","names":[]}
1
+ {"version":3,"sources":["../src/components/cognito/pre-token-generation.handler.ts"],"sourcesContent":["import type {\n Context,\n PreTokenGenerationTriggerEvent,\n PreTokenGenerationTriggerHandler,\n} from \"aws-lambda\";\n\n/* Hardcoded OpenHI claims. These will be made dynamic in a future update. */\nconst OPENHI_CLAIMS = {\n ohi_tid: \"placeholder-tenant-id\",\n ohi_wid: \"placeholder-workspace-id\",\n ohi_uid: \"placeholder-user-id\",\n ohi_uname: \"placeholder\",\n} as const;\n\n/**\n * @see sites/www-docs/content/packages/@openhi/constructs/components/cognito/pre-token-generation-lambda.md\n *\n * Cognito Pre Token Generation trigger (V2_0).\n * Adds openhi_* claims to both the ID token and the access token. Invoked on sign-in and token refresh.\n * Token issuance must not fail: on error we return the event unchanged.\n */\nexport const handler: PreTokenGenerationTriggerHandler = async (\n event: PreTokenGenerationTriggerEvent,\n _context: Context,\n): Promise<PreTokenGenerationTriggerEvent> => {\n console.debug(`Raw event=${event}`);\n try {\n if (!event.response) {\n (event as { response: Record<string, unknown> }).response = {};\n }\n const response = event.response as Record<string, unknown>;\n const claimsToAdd = { ...OPENHI_CLAIMS };\n response.claimsAndScopeOverrideDetails = {\n accessTokenGeneration: {\n claimsToAddOrOverride: claimsToAdd,\n },\n idTokenGeneration: {\n claimsToAddOrOverride: claimsToAdd,\n },\n };\n } catch {\n // Do not fail token issuance; return event unchanged.\n console.warn(\"Event is missing tenant or workspace ID...\");\n }\n return event;\n};\n"],"mappings":";;;AAOA,IAAM,gBAAgB;AAAA,EACpB,SAAS;AAAA,EACT,SAAS;AAAA,EACT,SAAS;AAAA,EACT,WAAW;AACb;AASO,IAAM,UAA4C,OACvD,OACA,aAC4C;AAC5C,UAAQ,MAAM,aAAa,KAAK,EAAE;AAClC,MAAI;AACF,QAAI,CAAC,MAAM,UAAU;AACnB,MAAC,MAAgD,WAAW,CAAC;AAAA,IAC/D;AACA,UAAM,WAAW,MAAM;AACvB,UAAM,cAAc,EAAE,GAAG,cAAc;AACvC,aAAS,gCAAgC;AAAA,MACvC,uBAAuB;AAAA,QACrB,uBAAuB;AAAA,MACzB;AAAA,MACA,mBAAmB;AAAA,QACjB,uBAAuB;AAAA,MACzB;AAAA,IACF;AAAA,EACF,QAAQ;AAEN,YAAQ,KAAK,4CAA4C;AAAA,EAC3D;AACA,SAAO;AACT;","names":[]}
package/lib/rest-api-lambda.handler.js CHANGED
@@ -58,12 +58,7 @@ function normalizeJsonBodyMiddleware(req, _res, next) {
58
58
 
59
59
  // src/data/middleware/open-hi-context.ts
60
60
  var import_serverless_express = require("@codegenie/serverless-express");
61
- var REQUIRED_CLAIMS = [
62
- "openhi_tenant_id",
63
- "openhi_workspace_id",
64
- "openhi_user_id",
65
- "openhi_user_name"
66
- ];
61
+ var REQUIRED_CLAIMS = ["ohi_tid", "ohi_wid", "ohi_uid", "ohi_uname"];
67
62
  function getJwtClaims(req) {
68
63
  const invoke = (0, import_serverless_express.getCurrentInvoke)();
69
64
  const event = invoke?.event ?? req.apiGateway?.event;
@@ -88,11 +83,11 @@ function openHiContextMiddleware(req, res, next) {
88
83
  const event = invoke?.event ?? req.apiGateway?.event;
89
84
  const requestId = typeof event?.requestContext?.requestId === "string" ? event.requestContext.requestId : void 0;
90
85
  req.openhiContext = {
91
- tenantId: claims.openhi_tenant_id,
92
- workspaceId: claims.openhi_workspace_id,
86
+ tenantId: claims.ohi_tid,
87
+ workspaceId: claims.ohi_wid,
93
88
  date: (/* @__PURE__ */ new Date()).toISOString(),
94
- actorId: claims.openhi_user_id,
95
- actorName: claims.openhi_user_name,
89
+ actorId: claims.ohi_uid,
90
+ actorName: claims.ohi_uname,
96
91
  actorType: "human",
97
92
  roleId: typeof claims.openhi_role_id === "string" && claims.openhi_role_id !== "" ? claims.openhi_role_id : void 0,
98
93
  requestId,